Log z otl komputer strasznie zwolnił

Dla specjalistów Bezpieczeństwo
#1

Witam od pewnego czasu komuter się “zamula” nei mam zadnego dobrego antywirusa poza AVG mysle że może jakiś wirus jest w systemie. z gory dzieki za pomoc

 OTL:

 http://wklej.org/id/1361719/

Extras:

http://wklej.org/id/1361721/

#2

Odinstaluj Click2Save,SweetIM for Messenger 3.7,Internet Explorer Toolbar 4.6 by SweetPacks,Contextual Tool Extrafind,free-downloads.net Toolbar,WeFiBar Toolbar.Użyj AdwCleaner http://www.bleepingcomputer.com/download/adwcleaner/ z funkcji Skan(Szukaj) a następnie Clean(usuń).

Pobierz Farbar Recovery Scan Tool http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/ zgodny z wersją systemu 32-bit lub 64-bit.

#3

ok musze leciec do roboty ale jutro jak wstane to zaraz działam wątpie ze wszystkie te programy usune bo Click2Save,SweetIM for Messenger 3.7 nie chca się odinstalowac

#4

Otwórz Notatnik i wklej:

Task: C:\WINDOWS\Tasks\ROC_REG_JAN_DELETE.job = C:\Documents and Settings\All Users\Dane aplikacji\AVG January 2013 Campaign\ROC.exe
URLSearchHook: ATTENTION == Default URLSearchHook is missing.
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si=62606st=bstid=6533ver=4.5ts=1375903362250.000005tguid=62606-6533-1375903362250-6D0CBF8ECD016353440BDEDA3C28ADD4q={searchTerms}
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = http://search.certified-toolbar.com?si=62606st=bstid=6533ver=4.5ts=1375903362250.000005tguid=62606-6533-1375903362250-6D0CBF8ECD016353440BDEDA3C28ADD4q={searchTerms}
SearchScopes: HKLM - {1AF69A8A-B5B0-862B-DA5E-2C1969A81884} URL = http://search.certified-toolbar.com?si=33953bs=truetid=2958q={searchTerms}
SearchScopes: HKLM - {1C9E58DB-554E-43CD-B534-90112E922FBD} URL = http://startsear.ch/?aff=1q={searchTerms}
SearchScopes: HKLM - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.certified-toolbar.com?si=62606st=bstid=6533ver=4.4ts=1375903362250.000005tguid=62606-6533-1375903362250-6D0CBF8ECD016353440BDEDA3C28ADD4q={searchTerms}
SearchScopes: HKCU - DefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.certified-toolbar.com?si=62606st=bstid=6533ver=4.5ts=1375903362250.000005tguid=62606-6533-1375903362250-6D0CBF8ECD016353440BDEDA3C28ADD4q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://search.certified-toolbar.com?si=62606st=bstid=6533ver=4.5ts=1375903362250.000005tguid=62606-6533-1375903362250-6D0CBF8ECD016353440BDEDA3C28ADD4q={searchTerms}
SearchScopes: HKCU - {1AF69A8A-B5B0-862B-DA5E-2C1969A81884} URL = http://search.certified-toolbar.com?si=33953bs=truetid=2958q={searchTerms}
SearchScopes: HKCU - {1C9E58DB-554E-43CD-B534-90112E922FBD} URL = http://startsear.ch/?aff=1q={searchTerms}
SearchScopes: HKCU - {398162E5-3362-D74B-DBE5-2510969BAFAD} URL = http://search.babylon.com/?q={searchTerms}affID=112542tt=120912_nocpc_3712_3babsrc=SP_ssmntrId=201b729100000000000014dae9dd84a7
SearchScopes: HKCU - {AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8} URL = http://www.daemon-search.com/search/web?q={searchTerms}
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.certified-toolbar.com?si=62606st=bstid=6533ver=4.4ts=1375903362250.000005tguid=62606-6533-1375903362250-6D0CBF8ECD016353440BDEDA3C28ADD4q={searchTerms}
SearchScopes: HKCU - {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = http://mystart.incredibar.com/mb178/?search={searchTerms}loc=IB_DSa=6OyOjlzD9li=26
Toolbar: HKCU - No Name - {A057A204-BACC-4D26-9990-79A187E2698E} - No File
Toolbar: HKCU - free-downloads.net Toolbar - {ECDEE021-0D17-467F-A1FF-C7A115230949} - C:\Program Files\free-downloads.net\prxtbfre0.dll (Conduit Ltd.)
Toolbar: HKCU - No Name - {0B876028-B388-4F6D-922F-F52FAEC8535F} - No File
Toolbar: HKCU - No Name - {ECE24DCF-8548-4655-B392-47A388721482} - No File
CHR Plugin: (vShare.tv plug-in) - C:\Documents and Settings\Krzychu\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll No File
CHR Plugin: (AVG Internet Security) - C:\Documents and Settings\Krzychu\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\10.0.0.1409_0\plugins/avgnpss.dll No File
CHR Extension: (Click2Save) - C:\Documents and Settings\Krzychu\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aafonplkeiaiejmikhondcoghaeadmam [2012-10-08]
CHR Extension: (Complitly plugin for chrome) - C:\Documents and Settings\Krzychu\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda [2012-09-18]
CHR Extension: (SweetIM for Facebook) - C:\Documents and Settings\Krzychu\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn [2012-10-08]
CHR Extension: (uTorrentControl2) - C:\Documents and Settings\Krzychu\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pacgpkgadgmibnhpdidcnfafllnmeomc [2012-09-18]
CHR HKLM\...\Chrome\Extension: [aafonplkeiaiejmikhondcoghaeadmam] - C:\Documents and Settings\All Users\Dane aplikacji\Click2Save\aafonplkeiaiejmikhondcoghaeadmam.crx [2012-10-07]
CHR HKLM\...\Chrome\Extension: [dlfienamagdnkekbbbocojppncdambda] - C:\Program Files\Complitly\chrome\ComplitlyChrome.crx [2012-09-16]
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx [2012-09-16]
CHR HKLM\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files\DealPly\DealPly.crx [2012-09-16]
CHR HKLM\...\Chrome\Extension: [jcdgjdiieiljkfkdcloehkohchhpekkn] - C:\Documents and Settings\Krzychu\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\External Extensions\{EEE6C373-6118-11DC-9C72-001320C79847}\SweetFB.crx [2012-10-01]
CHR HKLM\...\Chrome\Extension: [kcmilhmkaganinonedmjidmceoppaajg] - C:\Program Files\CertifiedToolbar\chrome\CertifiedToolbar.crx [2012-10-01]
CHR HKLM\...\Chrome\Extension: [npgpgjiajblpbldjkelafjjhfjcddlba] - C:\Program Files\HomeTab\chrome\HomeTab.crx [2012-08-13]
CHR HKLM\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Documents and Settings\Krzychu\Ustawienia lokalne\Dane aplikacji\CRE\pacgpkgadgmibnhpdidcnfafllnmeomc.crx [2012-08-06]
CHR HKCU\...\Chrome\Extension: [gaiilaahiahdejapggenmdmafpmbipje] - C:\Program Files\DealPly\DealPly.crx [2012-08-06]
CHR HKCU\...\Chrome\Extension: [pacgpkgadgmibnhpdidcnfafllnmeomc] - C:\Documents and Settings\Krzychu\Ustawienia lokalne\Dane aplikacji\CRE\pacgpkgadgmibnhpdidcnfafllnmeomc.crx [2012-08-06]
S1 ArcSec; system32\drivers\ArcSec.sys [X]
S3 Cap7134; system32\DRIVERS\Cap7134.sys [X]
S3 DSDrv4; \\C:\PROGRA~1\K!TV\Plugins\S_Bt8x8\DSDrv4.sys [X]
S3 HWIONT; \\C:\MoreTV\HWIONT.sys [X]
S3 hwusb_cdcacm; system32\DRIVERS\ew_cdcacm.sys [X]
S3 hwusb_cdcecm; system32\DRIVERS\ew_cdcecm.sys [X]
S3 PhTVTune; system32\DRIVERS\PhTVTune.sys [X]
S3 RTL8192cu; system32\DRIVERS\RTL8192cu.sys [X]
S2 SSPORT; \\C:\WINDOWS\system32\Drivers\SSPORT.sys [X]
2014-05-14 20:29 - 2014-05-14 20:30 - 00000000 ____ D () C:\AdwCleaner

Plik zapisz pod nazwą fixlist.txt i umieść obok FRST

Instalacja Service Pack 3

#5

zrobione co dalej??

#6

Skasuj folder C:\FRST

Użyj http://www.bleepingcomputer.com/download/tfc/ (uruchom TFC i kliknij Start).

#7

zrobione co dalej??